Brinqa continues to transform Vendor Risk Management with the integration of SecurityScorecard

by Brinqa Security Team



The integrated solution combines Brinqa VRM and SecurityScorecard Security Ratings to deliver Continuous Vendor Risk Management through Data-driven Security Ratings

Austin, TX – December 22, 2015

Brinqa, a leader in Unified Risk Management solutions and SecurityScorecard, the standard in security ratings, today announced a joint integration to deliver the industry’s most comprehensive continuous Vendor Risk Management  (VRM) Solution. The integrated solution presents a holistic perspective of vendor risk by consolidating and harmonizing internal self-assessments with continuous monitoring capabilities from Security Scorecard.

“Security Scorecard ratings deliver a unique and invaluable dimension to Vendor Risk – one that is objective, data-driven, automated and continuous. The adaptability and extensibility of the Risk Platform underlying the Brinqa VRM solution make Security Scorecard security ratings an ideal and natural complement to our solution.” Hilda Perez, President and Co-founder, Brinqa.

The New Standard in Continuous Vendor Risk Management

The integrated solution considers all aspects of a vendor’s profile and its usage within the organization. The solution combines business-driven risk classifications, contextual control assessments, continuous monitoring based on security events and diligence measures, closed loop remediation of gaps and threats, complete workflow and governance, and advanced analytics to gain insights and deliver the most complete model for vendor risk management.

The Power of Security Analytics

The extensive security data collected by Security Scorecard to evaluate its external compromise and diligence risk vectors is now accessible within the powerful Brinqa Risk Analytics Platform. Advanced diagnostics and analytics can be applied to this security data to get insights previously hidden. The analytics module can also be used independently outside of vendor management and governance as a powerful tool for security teams to benchmark their own security program against itself, peers, and industry.

“As cloud services proliferate, companies are struggling to accurately assess, monitor and benchmark the security posture of their own enterprises. Add in the security risks introduced by third-party vendors and the challenge becomes nearly unmanageable”, observes Sam Kassoumeh, co-founder and COO of SecurityScorecard.

“Brinqa’s Risk Analytics Platform offers a multi-dimensional view of the inherent risks posed by a company’s third-party ecosystem.  The ability to select and focus on different aspects of risk or compliance-gaps makes it more likely that the risk and IT teams can act accordingly. We are excited to work with Brinqa to continuously update the critical vulnerability factors that contribute to the overall risk facing companies today”

About Brinqa

Brinqa is a leading provider of unified risk management – enabling stakeholders, governance organizations, and infrastructure and security teams to effectively manage technology risk at the speed of business. Brinqa software and cloud services leverage an organization’s existing investment in systems, security, and governance programs to identify, measure, manage and monitor risk. With Brinqa, organizations are reducing response time to emerging threats, impact to business, and technology risk and compliance costs by over 50% through real-time risk analytics, automated risk assessments, prioritized remediation, actionable insights and improved communication.

Founded in 2008 by industry leaders in risk management with a proven track record in delivering cutting edge, innovative and cost-effective solutions. Brinqa’s award winning software and cloud services are trusted by fortune 500 companies across risk disciplines such as information technology risk, vendor risk, and regulatory compliance risk. Brinqa is headquartered in Austin, Texas and has a global presence.

For more information, please visit

About SecurityScorecard

SecurityScorecard was founded in 2013 by two former Chief Information Security Officers —  Dr. Aleksandr Yampolskiy and Sam Kassoumeh. SecurityScorecard is made up of veteran security researchers, cryptographers, data scientists, and software engineers. The company is privately held, with headquarters in New York City. Security Scorecard investors include Sequoia Capital, Evolution Equity Partners, Boldstart Ventures, and others.

About SecurityScorecard’s Benchmarking Service

SecurityScorecard allows organizations to benchmark the security of any partner, competitor, supplier, vendor —  any third party or company— without requiring permission.

The proprietary foundation of the platform is the ThreatMarket™ data engine that collects over 30 million daily security risk signals from the entire Internet. SecurityScorecard collects and grades the security risk of companies in the following ten categories and factors: Web Application Security, Network Security, Endpoint Security, IP Reputation, Patching Cadence, Password Exposure, Hacker Chatter, Social Engineering, DNS Health, and CubitTM Score, a metric that assesses common system configurations.

For further information, please visit

Read Next

< Prev

The Makings of Quantitative Risk Assessment

Next >

A Vulnerability Management Primer – Part 1 : Incentive & Scope